User Impersonation as a Service in End-to-End Testing

Boni García, Francisco Gortázar, Micael Gallego and Eduardo Jiménez

Universidad Rey Juan Carlos, Calle Tulipán S/N, 28933 Móstoles (Spain)

Keywords: End-to-End Testing, User Impersonation, Software as a Service, WebRTC.

Abstract: Testing large distributed heterogenous systems in cloud environments is a complex task. This situation

becomes especially difficult when carrying out end-to-end tests, in which the whole system is exercised,

typically through its graphical user interface (GUI) with impersonated users. These tests are typically

expensive to write and time consuming to run. This paper contributes to the solution of this problem by

Modern software systems are increasingly complex.

Nowadays, architectures involving distributed

heterogenous services, cloud native, and

microservices are more and more common. As

usual, in order to accomplish a satisfactory level of

quality for these systems, different aspects need to

be addressed. First, the expectations of final users

need to be met. Using the classical definition of

Verification and Validation (V&V) by the

distinguished professor of computer science Barry

Finally, we need to reduce the number of software

defects (commonly known as bugs) in our system to

the minimum, ideally to zero.

V&V include a wide array of activities, mainly

divided in two groups. On the one hand, software

testing (or simply testing) consists of observing a

sample of executions (test cases), and giving a

verdict on them. Hence, testing is an execution-

based activity, and for this reason, it is sometimes

called dynamic analysis. On the other hand, static

analysis. Regarding the later, this technique is

usually delivered as commercial or open source tools

and services, commonly known as lint or linter.

This paper is focused in software testing, which

is a broad term encompassing a wide spectrum of

different concepts. Depending on the size of the

System Under Test (SUT) and the scenario in which

it is exercised, testing can be carried out at different

levels. There is no universal classification for all the

different testing levels. Nevertheless, the following

▪ System: all of the components are integrated

▪ Acceptance: final users decide whether or not

The first three levels (unit, integration, and

system) are typically carried out during the

development phases of the software life cycle. These

tests are typically performed by different roles of

software engineers, i.e. programmers, testers,

depicted as a pyramid, in which the base is the unit

tests (which in in theory are more numerous), while

the number of other tests (integration, system,

acceptance) is decreasing as long as we ascend to the

top. This idea of a pyramid for the different testing

levels was first proposed by Mike Cohn (Cohn,

2009).

The capability to automate of the different tests

and should be automated. Regarding top-level tests

-system and end-to-end-, these tests typically drive

an application through its user-interface, checking

that the application returns the expected results. This

approach works well in simple scenarios, but at the

end of the day these tests are prone to potential

problems, such as brittle logic, expensive to write,

and time consuming to run (Fowler, 2012). This

situation leads to the ice-cream cone anti-pattern, in

which manual tests -which should be a reduced

software practitioners in the common case that the

SUT is increasingly large and complex, such as

distributed heterogenous, microservices, or cloud

native systems. This kind of software systems

aggregates many different distributes components,

which are typically built and run applications based

on Infrastructure as a Service (IaaS) combined with

operation tools and services such as Continuous

environments. To make easier this process for

software practitioners, we have created an open

source framework ElasTest. As we will discover,

this framework provides advance test capabilities to

ease the end-to-end tests process for different kind

of applications, including web and mobile.

Moreover, ElasTest provides the capability of

by extending the standard W3C WebDriver

recommendation (Stewart, 2017). This service has

been evolved into a fully Software as a Service

resources scheduling, software provisioning or

system scaling, providing a high-level test capability

which can be referred as User Impersonation as a

Service (UIaaS).

The remainder of this paper is structured as

follows. Section 2 provides a brief overview in the

state-of-the-art on end-to-end testing and user

impersonation. Section 3 provides a description of

the ElasTest framework. Then, section 4 provides

Service (called EUS in the ElasTest jargon). In order

performed using a videoconferencing web system

results of this case study are contained in section 5.

Finally, section 6 provides the conclusions, findings,

the system as a whole due to the number and

diversity of individual components, the difficulty to

coordinate the test participants due to the distributed

nature of the system, or the difficulty to test the

components individually.

Recent research effort has tried to quantify the

current state of the practice of the testing automation

level for this kind of software systems. For instance,

Lima and Faria have conducted an exploratory

automation for distributed heterogenous system, and

confirm and prioritize the relevance of test

automation features for these systems.

Many different contributions in the literature

aimed to improve the current state of the art in end-

to-end testing. For instance, the European

Commission funded H2020 project TRIANGLE

is

device manufacturers in the evolving 5G sector to

test and benchmark new mobile applications in

Europe. This framework evaluates Quality of

Regarding web and mobile applications, the

main mechanisms used in the current state-of-the-art

for the functional testing of these applications

consists on impersonating a user through some kind

of GUI automation technology, being Selenium

the

most popular solution for web applications. In this

domain, Selenium WebDriver is capable of drive

automatically real browsers, such as Chrome,

Firefox, Opera, Edge, Safari, etc., using different

programming languages, such as Java, C#, Python,

Ruby, PHP, Perl, or JavaScript. To that aim,

WebDriver communicates with a browser-specific

binary which acts as a bridge with the browser. The

the driver binary is done with JSON messages over

HTTP using the so-called JSON Wire Protocol

(Bruns, 2009). This mechanism, originally proposed

by the Selenium team is being standardized in the

W3C WebDriver recommendation (Stewart, 2017).

The second major component of the Selenium

http://www.triangle-project.eu/

framework is called Selenium Grid. This component

allows remote execution of Selenium WebDriver on

distributed machines. The architecture of Selenium

Grid is composed by a group of nodes, each running

on different operating systems and with different

browsers. Then, a central piece called hub (also

known as Selenium Server) keeps a track of the

nodes and proxies requests to them using JSON

Appium Server is remotely controlled by means of

Wire Protocol/W3C WebDriver messages, typically

used by tests of scripts implementing the WebDriver

API (Shah, 2014).

https://www.openservicebrokerapi.org/

the art providing an advanced user impersonation as

a service capability that provides GUI automation

basing on open source paradigms and enables also

the evaluation of the perceived quality of users on

relevant scenarios such as real-time multimedia

applications. As introduced in the section before,

this feature has been implemented in the component

called ElasTest User Impersonation Service (EUS),

and Appium respectively. The vision of EUS is to

enhance the current support with additional advance

capabilities in a seamless and integrated solution.

To that aim, EUS exposes a REST API based on

JSON messages

which complements the W3C

WebDriver specification. The definition to this

REST API has been defined using Open API

notation

, and it is summarized in Table 1. In this

table, the first operation allows to subscribe to

events in a given element of the user interface. Then,

watch in real-time the use of a browser or mobile

device, typically driven by a test script using the

WebDriver API.

The last group of operations summarized in Table

1 are targeted for WebRTC applications. WebRTC is

the umbrella term for a number of emerging

technologies that extends the web browsing model to

exchange real-time media with other browsers

(Loreto, 2017). Market momentum around WebRTC

is growing very fast nowadays, and therefore, it is

imperative for software testers to have a strategy in

place in order to assess WebRTC applications

efficiently. Nevertheless, testing WebRTC-based

applications in a consistently automated fashion is a

challenging problem. EUS contributes to the

solution of this problem with proving advance

features aimed to asses this kind of applications.

good indicator on Quality of Service (QoS) for

WebRTC. These include traffic metrics such as

network latency, network packet loss, network jitter,

retransmissions, or consumed bandwidth.

Moreover, EUS enables to measure the end-

user's perceived quality so that testing through the

validation of the subjective perceived quality. To

and video using different full-reference algorithms,

such as PESQ (Rix, 2001) for audio or SSIM (Wang,

2004) for video. Full-reference is type of QoE

(Chikkerur, 2011). This, applied to EUS, means that

a couple of browsers (or mobile devices) are needed,

first one acting as media source and the other acting

as media consumer. Internally, this process reuses

the aforementioned publish-subscribe mechanism, in

which quality events - audio or video- are published

periodically.

Finally, EUS provides several extra capabilities

in conjunction with the rest of ElasTest components.

On the one hand, it records every session in a

seekable recording, stored in EDM as a video file.

allowing users to check the evolution of test

always gathers automatically the browser logs in

every session. Again, this information is stored

valuable source of information for developers and

testers to try to trace the source of faults when tests

are failing.

EUS has been implemented as a Spring Boot

REST service listening for the enhanced version of

W3C WebDriver specification just presented. The

session creation carried out in a WebDriver script.

Once the EUS controller receives this message

(POST /session), proxies the message to a

in successive requests to interact with the

browser/mobile just created. At the end of the

session, the script will invoke the termination

command (DELETE /session) using the proper

session identifier. At this point, the infrastructure

resources are released by EPM, and the complete

recording a logging data is sent to EDM.

5 CASE STUDY: TESTING

WEBRTC APPLICATIONS

MADE WITH OPENVIDU

follows a client-server architecture and therefore is

made up by two main components. On the client-

side, the OpenVidu Browser is a JavaScript/

TypeScript library which allows to create video

calls, join users to them, and send/receive media

streams. On the server-side, the OpenVidu Server

receives the operations from clients establishing and

managing the video-calls.

In order to carry out end-to-end tests of WebRTC

applications, it is mandatory to use browsers that

server the latest versions of Chrome and Firefox

were installed, and Selenium sessions were executed

through a virtual framebuffer display server -Xvfb-.

The research question driving this case study is

service capable of improving the end-to-end testing

this question, first an instance of ElasTest was

Figure 4: Screenshot of ETM/EUS during the execution of a OpenVidu end-to-end test.

implemented in Java, and therefore the required

change was related to the specific objects to control

browsers -i.e. ChromDriver for Chrome and

drivers, called RemoteDriver in Java. These

objects require the URL to connect with the

Selenium Server, which is implemented in ElasTest

by EUS. When tests are executed inside ElasTest,

this URL is available by reading the environmental

variable ET_EUS_API. The source code of these

ETM, defining the OpenVidu application under test

and its dependencies. Figure 4 provides an ETM

screenshot of the exectution of one end-to-end test

against the SUT while it is executed by the EUS. As

explained in the section before, once the test

fact that EUS is based on the W3C WebDriver

standard, facilitates its adoption in an existing test

codebase. Second, the capability to provide different

types of browsers and version in a semanless and

elastic manner is very valuable for testers, since it

avoids to manage directly the infrastructure reducing

the efforts required mainly in DevOps side, and

providing valuable assets to create compatibity tests

Jenkins infrastructure.

6 CONCLUSIONS AND FUTURE

WORK

Software testing is the most commonly performed

activity within V&V. Modern web and mobile

applications are characterized by rapid development

cycles, which supposes that testers tend to pay scant

attention to automated end-to-end test suites. As a

result, this kind of tests is usually abandoned or

poorly performed.

This paper introduces ElasTest, an open source

platform aimed to ease end-to-end tests for

heterogenous large distributed systems. The mision

but enhanced with extra capabilities, such as event

subscription, log gathering, or advance media

capabilities for WebRTC applications. This service

have be built extending the W3C WebDriver

specification, and therefore, popular technologies

such as Selenium and Appium are completely

compatible with ElasTest.

its infancy. Therefore, some features are still under

development. For instance, the measurent of the end-

evaluating the most suitable way of doing it, which

may involve simple mechanisms such as evaluation

of response-time from the GUI.

ACKNOWLEDGEMENTS

This work has been supported by the European

Commission under projects NUBOMEDIA (FP7-

ICT-2013-1.6, GA-610576), and ElasTest (H2020-

& AEI.

REFERENCES

Boehm, B.W., 1979. Software engineering: R&D trends

and defense needs. Research directions in software

technology, 1, p.977.

Bruns, A., Kornstadt, A. and Wichmann, D., 2009. Web

application tests with selenium. IEEE software, 26(5).

framework for virtual network function management

and orchestration for emerging software-based 5g

networks. Newsletter, 2016.

Proceedings.(ICASSP'01). 2001 IEEE International